TL;DR: We never store your raw bank statement PDF. We extract transaction data, then discard the file. We don't sell your data. Ever.
1. What we collect
When you use spndrai.com, we collect:
- Your email address and password (hashed) when you register
- Transaction data extracted from bank statements you upload (merchant names, amounts, dates, categories)
- Usage data (pages visited, features used) to improve the product
2. What we do NOT collect
- Your raw PDF bank statement — it is processed in memory and discarded immediately
- Your banking credentials or account numbers
- Any information beyond what you explicitly provide
3. How we use your data
We use your data to:
- Provide the spending analysis and categorization service
- Improve AI categorization accuracy (anonymized, aggregated only)
- Send transactional emails (upload confirmations, etc.) if you've opted in
We do not use your financial data for advertising, profiling, or any purpose other than providing the service you signed up for.
4. Data sharing
We share data with:
- Anthropic API — transaction text is sent to Claude API for AI categorization. Anthropic's privacy policy applies. Transaction amounts are sent as paise integers (no identifying context beyond merchant names).
- Infrastructure providers — our hosting provider (where your encrypted data is stored)
We never sell, rent, or trade your personal data to any third party for any purpose.
5. Data security
All data is encrypted in transit (TLS) and at rest. Passwords are hashed using bcrypt. We conduct regular security reviews.
6. Data retention
Your transaction data is retained as long as your account is active. If you delete your account, all your data is permanently deleted within 30 days. You can export your data at any time.
7. Your rights
You have the right to:
- Access all data we hold about you
- Export your transaction data as CSV
- Request deletion of your account and all associated data
- Correct any inaccurate data
8. Cookies
We use essential session cookies to keep you logged in. We do not use advertising or tracking cookies.
9. Contact
Questions about this policy? Email us at privacy@spndrai.com.
This policy is a placeholder and will be updated with full legal language before public launch.